The US National Institute of Standards and Technology (NIST) has just announced withdrawal of approval for triple DES (also known as 3DES, TDEA and sometimes DES EDE) in common protocols such as TLS and IPSec. In other applications, they propose a restriction to just 8MB of data before changing keys. Why are they doing this and what are the consequences?
It's my birthday too
Lowering the bar
In response, the new NIST recommendation lowers the limit before rekeying to a mere 2^20 blocks. Each block is 8 bytes, so that gives us 8 * 2^20 bytes, or 8 * 2^10 kilobytes, or 8 megabytes as a limit. Since this is so small, they advise that 3DES is removed completely from network protocols such as IPSec and TLS.
We often see 3DES in TLS configurations at our crypto protocol scan site. It is usually the server's least preferred ciphersuite, and included for compatibility with old versions of Windows XP that don't support AES suites. We also see it often in Java applications audited by Cryptosense Analyzer, in business logic code as well as application framework components and libraries, including standard keystores.
 Of course birthdays are not really uniformly distributed. February 29th is a long way behind. Distribution is also influenced by scheduled medical interventions such as caesareans as well as seasonal factors. In France, the most likely day is May 7th, right before the fixed May 8th bank holiday.